BrightCloud IP Reputation Service Detects High Risk IP Addresses

Whether it’s High Risk IP Address of-service attacks, dropping malware, or hosting criminally illegal or obscene content, malicious IP addresses pose a significant threat to online businesses. Detecting these threats requires a deep understanding of what is happening at the network layer. As fraudsters and cybercriminals evolve their methods of attack, it’s essential to have a tool that enables you to shine a light into the dark areas of your network and understand where risky activity is coming from.

Safe Surfing: Leveraging IP Abuse Lookup for Online Security

One way to do this is by leveraging IP reputation data and risk scores to evaluate the likelihood that a transaction is fraudulent. Fraud risk scores can be calculated in many ways, including the frequency and volume of transactions from an IP address, and whether the device is associated with other suspicious or fraudulent behavior (such as being on a blacklist). A high fraud score might also be the result of a geographic location in a region where a specific type of fraud is more prevalent.

A higher fraud risk score can also be the result of being detected as a proxy or other anonymizer, which can hide the source of the end-user’s activities. Other factors include the type of software and operating system being used on a device, the ports and protocols in use, and the amount of time that the device was active. To get the most accurate picture of an IP address and its relationship to risk, BrightCloud’s IP Reputation Service includes intelligence on both in-use IPv4 and IPv6 addresses as well as add-on IP Threat Insights, which provides supplementary evidence of why an IP was classified as a threat (for example, the type(s) of malware it distributed or the number of DDoS attacks it launched).